Java Vulnerabilities Report: Write Once, Pwn Anywhere

by Bit9

Sep 24, 2013

Download Java's ubiquity and vulnerabilities have made it the technology most frequently exploited by cyber attackers. So it is timely to closely explore the breadth and state of its deployment among enterprises. Bit9 undertook an examination of these questions, leveraging endpoint data across many organizations. The results are surprising and concerning:

� Java has become the most targeted endpoint technology.
� Most endpoints have multiple versions of Java installed, in part because the Java installation and update process often does not remove old versions.
� Attackers often target old, vulnerable versions installed on the endpoint.
� Fewer than 1 percent of enterprises run the latest version of Java.